On Oct 1, 2008, at 8:22 AM, Danny Mayer wrote: > Adam Tkac wrote: >> Well it is quite different if you create per-interface bindings or >> bind(2) >> to INADDR_ANY. >> >> If you create per-interface bindings and you create new network >> interface >> BIND can't see it and use it (not sure if rndc reload/reconfig helps, >> I haven't test it yet). >> > > BIND9 has no problem with seeing new interfaces. You don't need rndc > for > that, it's quite automatic. You can use interface-interval to adjust > the > frequency of the checking.
Only if named is running as root. As any other user, it doesn't have the right to bind to port 53; therefore, any interface that appears after named drops privileges is unavailable. (You might be able to work around this on Linux by setting capabilities [libcap2].) Chris Buxton Professional Services Men & Mice
